do spambots have javascript activated?? I don’t think so, so if js was not active, all the addresses are visible, right? I think this has to be done on the server side, before the page is even sent to the client, then on the client-side we have to decrypt the mailadresses (which were encrypted on server side) with javascript…